Ir à oferta completa

INFORMATION SECURITY AND COMPLIANCE OFFICER

Descrição da oferta de emprego

Company Description We are in Business for People, empowering people in service organizations with innovative Enterprise and  Business software solutions.
We’ve innovated and taken a new approach to delivering ERP that works for  people.
Self-driving, adaptive and intuitive software that is changing the way people work.
Our solutions  empower people and deliver a better people experience so people can spend time on meaningful high value  work they live for.
Read more on our website about how we transform work and how people feel about it, so our customers  and their people can thrive.
Job Description The purpose of the Information Security and Compliance Officer is to maintain effective risk management through the Information Security Management System and ensure ongoing certification by maintaining information security policies, conducting internal audits, providing training and reviewing information security arrangements The Information Security and Compliance Officer  will work with the CISO and other Team members in expanding the existing ISMS and Quality Framework.
The role holder will participate in the management of and ensure all actions are completed to maintain certification to ISO / ISO / SOC1 / SOC2 / C5 and also ISO.
Role holder will liaise closely with SMEs who are globally geographically spread and participate in the monthly ISMS committee meetings.
Role is remote (from Portugal, Poland or Spain).
Job Responsibilities.
Liaison with related functions (particularly IT, Cloud Operations, R&D, Product Development) plus senior and middle managers throughout the organization as necessary, on information security matters such as secure processes, emerging security risks and controls.
Lead on Penetration Testing oversight and technical reviews of various technologies and solutions across Unit4.
Participate in the implementation, operation, support and maintenance of the Information Security Management System based on the ISO/IEC series standards, including maintaining our certifications against ISO/IEC , SOC1 and SOC2 as well as expansion as needed.
Participate in the preparation and the implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Committee to get appropriate approvals and feedback.
Support the operation of related compliance monitoring and improvement activities to ensure compliance with both internal security policies etc.
and working with the Legal teams to ensure that applicable laws and regulations are met.
Support departments and help manage projects for implementation of information security management system.
Support information security awareness, training and educational activities.
support information security risk assessments and implement appropriate controls.
Desirable Experience  Working knowledge of the Information Security elements of EU DORA, EBA, NIS2, C5 and other relevant regulations to a global SaaS company.
Experience of organizing and carrying out Internal Information Security Audits with the primary aim of identifying Information Security Risks.
Maintenance, support and development of an ISMS which is compliant with ISO / ISO / SOC1 / SOC2 / C5.
Experienced in completing security risk assessments and tracking remediation efforts.
Broad technical understanding of Information Technology and SDLC with sufficient knowledge to be able to audit processes and procedures and work with technical personnel.
Understanding and experience managing / overseeing the Penetration Testing process with technical stakeholders and Penetration Testing companies.
Good understanding of generic end to end business processes (ideally for a SaaS company).
Experience of working in a fast paced international company.
Fantastic English speaking communication skills.
ability to articulate & simplify security concepts.
Good awareness of handling cultural differences when working with international colleagues.
Must be able to work autonomously to ensure that role requirements are met.
Experience of ISO Quality standard is also desirable.
Qualifications Mandatory around 5 years of professional experience in IT or audit related roles.
Desirable 2+ years demonstrable experience of a certified ISMS.
Ideally Graduate Level with a Batchelor in a computer science or security related subject.
CISSP / CISA / CISM / CRISC etc.
certifications are valued – but not essential.
Additional Information Join Unit4 and be part of one of the most exciting journeys in the cloud ERP software space.
We’re a fast-paced, high-growth, people-centric company, delivering enterprise software for a great people experience, and offering our own people a host of benefits and development opportunities.
Grow with us.
At Unit4, we offer.
• a culture built on trust - giving you the freedom and autonomy to be successful,  • balance - with our uncapped time off policy, remote working opportunities and Global Wellbeing Days  when the whole company can switch off and prioritize well-being, • talented colleagues, role models and mentors - work, learn and be inspired by some of the best talent  in the software industry, • a commitment to sustainability - with initiatives such as our Act4Good program, a way for everyone at  Unit4 to come together and engage in actions that benefit society and the planet, • a safe and inclusive working environment – supported by our Employee Resource Groups, which are  open to all and include Women at Unit4, Pride at Unit4, Mental Health and Access at Unit4, and  People of Color at Unit4.
I'm interested I'm interested Privacy Policy
Ir à oferta completa

Detalhes da oferta

Empresa
  • Indeterminado
Localidade
  • Em todo Portugal
Endereço
  • Indeterminado - Indeterminado
Data de publicação
  • 13/03/2025
Data de expiração
  • 11/06/2025
Position: Translator and Content Specialist (Portuguese)
DAC SERVICES AND SOLUTIONS LTD

Fluent in german and english... adapt surveys and questionnaires for portuguese-speaking audiences, ensuring cultural relevance and clarity... marketing materials:- translate brochures and other marketing materials from de>pt and en>pt... excellent attention to detail and strong organizational skills......

Junior Phyton NME and numpy developer
TEMPOSUSSURRANTE LTA

This proposal definesdetailed features& functionality and development methodology... 5 mysql linux and windows json, rest, api... @confidentialnote: mne library of python will be used to explore, visualise and analysehuman neurophysiological data... new remedies ltd (henceforth referred to as “company”......

Contact Center Operator German and English (m\f)
Eurofirms

Customer orders related to customer reservations, orders and purchases... we act on a framework of transparency, responsibility and respect... our commitment and involvement, together with constant technological innovation, has allowed us to position ourselves as one of the leading national human resources......

Chief Relationship Officer - francês - lisbonne (h/f)
Winid portugal

Notre client est un partenaire stratégique des entrepreneurs et dirigeants et propose une expertise comptable ainsi qu’un accompagnement fiscal, indispensables à la création et au développement d’une société au portugal... a winid está a revolucionar as regras do jogo ao colocar a procura de talentos......

Costumer Support and sales representative
CCTalents

Cctalents é uma empresa de recrutamento com vários clientes a nível nacional e internacional que atua desde 2016 em franco crescimento... requisitos do trabalho requisitos: falar fluentemente inglês e italiano experiência com atendimento ao publico (fator não obrigatório) 12º ano de escolaridade(fator......

Team Leader C and C++ Embedded Systems (m/f) - Lisboa
Fórmula do Talento

Experiência e competências: experiência prática no desenvolvimento e integração de sistemas embutidos... com/formula-do-talento/job/lr56w866 *todas as candidaturas serão tratadas com a máxima confidencialidade e ao abrigo da lei de proteção de dados... *apenas os candidatos que reúnam o perfil solicitado......

Test Engineer (Automation) – Phyton
Newin

· analyse and verify best automated and manual test approaches and execute acceptance, integration and system testing... · apply, design and develop automated testing strategies and build automated testing frameworks... · execute performance testing and present results for validating and analysis to......

SDA WITH DUTCH & ENGLISH (ATTRACTIVE BONUS)
Fujitsu Technology Solutions, Lda.

Possibility to work only 35h per week with our gimme5 program! fujitsu is the leading japanese information and communication technology (ict) company offering a full range of technology products, solutions and services... requisitos do trabalho mandatory proficiency in english and dutch strong client-facing......

Records Management Office
FÓRUM SELECCAO

Fórum selecção is looking for a records management office (m/f) for a corporate bank main activities: - maintain and update rmo (records management office) policy, procedures and retention schedule;- support the automation of manual processing of regulatory and non-regulatory records;- oversight of day-to-day......

Junior Payroll Specialist
Cluster OSL

To join our finance and accounting team... the ideal candidate should be detail-oriented, organized, and possess excellent communication skills to interact with employees and management... responsibilities: manage and oversee all payroll functions for the company process payroll on a timely and accurate......